# Report 2020-03

## News

 - [Ford Sharing Driving Data With Allstate, Plans Loyalty Credit Card](https://www.thetruthaboutcars.com/2020/03/ford-sharing-driving-data-with-allstate-plans-loyalty-credit-card/)
 - [Popular VPN And Ad-Blocking Apps Are Secretly Harvesting User Data](https://www.buzzfeednews.com/article/craigsilverman/vpn-and-ad-blocking-apps-sensor-tower)
 - [The Whisper Secret-Sharing App Exposed Locations](https://www.schneier.com/blog/archives/2020/03/the_whisper_sec.html)
 - [Masks won’t protect you from facial recognition](https://thenextweb.com/neural/2020/03/10/masks-wont-make-you-safe-from-facial-recognition/)
 - [Google Says It Doesn’t 'Sell' Your Data. Here’s How the Company Shares, Monetizes, and Exploits It](https://www.eff.org/deeplinks/2020/03/google-says-it-doesnt-sell-your-data-heres-how-company-shares-monetizes-and)
 - [Toronto is gathering cellphone location data from telecoms to find out where people are still congregating amid coronavirus shutdown](https://business.financialpost.com/technology/city-of-toronto-gathering-cellphone-location-data-from-telecoms-in-bid-to-slow-spread-of-covid-19-tory)
 - [Bosses Panic-Buy Spy Software to Keep Tabs on Remote Workers](https://www.bloomberg.com/news/features/2020-03-27/bosses-panic-buy-spy-software-to-keep-tabs-on-remote-workers)
 - [Telecoms across Europe are sharing phone location data with governments as a result of the COVID-19 pandemic](https://www.privateinternetaccess.com/blog/telecoms-across-europe-are-sharing-phone-location-data-with-governments-as-a-result-of-the-covid-19-pandemic)
 - [Report: unidentified database exposes 200 million Americans](https://cybernews.com/security/report-unidentified-database-exposes-200-million-americans/)
 - [Mozilla does not respect user requests to stop tracking telemetry data](https://www.privateinternetaccess.com/blog/mozilla-does-not-respect-user-requests-to-stop-tracking-telemetry-data)
 - [Saudi Arabia reportedly tracked phones by using industry-wide carrier weakness](https://arstechnica.com/information-technology/2020/03/saudi-arabia-reportedly-tracked-phones-by-using-industry-wide-carrier-weakness/)
 - [Zoom iOS App Sends Data to Facebook Even if You Don’t Have a Facebook Account](https://www.vice.com/en_us/article/k7e599/zoom-ios-app-sends-data-to-facebook-even-if-you-dont-have-a-facebook-account)
 - [New York Attorney General Looks Into Zoom’s Privacy Practices](https://www.nytimes.com/2020/03/30/technology/new-york-attorney-general-zoom-privacy.html)

## Data Breaches

 - [49 million unique email addresses of Straffic Marketing firm exposed online](https://securityaffairs.co/wordpress/98733/data-breach/straffic-data-leak.html)
 - [Hackers Compromise T-Mobile Employee' Email Accounts and Steal User' Data](https://thehackernews.com/2020/03/hackers-compromise-t-mobile-employees.html)
 - [Virgin Media Data Leak Exposes Details of 900,000 Customers](https://thehackernews.com/2020/03/virgin-media-data-breach.html)
 - [Comcast accidentally published 200,000 “unlisted” phone numbers](https://arstechnica.com/tech-policy/2020/03/comcast-accidentally-published-200000-unlisted-phone-numbers/)
 - [8 million UK shopping records exposed on the web, customers’ personal info leaked](https://www.comparitech.com/blog/information-security/uk-shopper-records-exposed/)
 - [Report: 267 million Facebook users IDs and phone numbers exposed online (UPDATE: now 309 million)](https://www.comparitech.com/blog/information-security/267-million-phone-numbers-exposed-online/)
 - [Rogers Data Breach Exposed Customer Info in Unsecured Database](https://www.bleepingcomputer.com/news/security/rogers-data-breach-exposed-customer-info-in-unsecured-database/)
 - [Aerial Direct, the O2’s largest UK partner suffered a data breach ](https://securityaffairs.co/wordpress/99776/data-breach/aerial-direct-security-breach.html)
 - [Marriott discloses data breach impacting up to 5.2 Million guests ](https://securityaffairs.co/wordpress/100830/data-breach/second-marriott-data-breach.html)
 - [Personal details for the entire country of Georgia published online](https://www.zdnet.com/article/personal-details-for-the-entire-country-of-georgia-published-online/)


## Paper/Report

 - [Web Browser Privacy: What Do Browsers SayWhen They Phone Home?](https://www.scss.tcd.ie/Doug.Leith/pubs/browser_privacy.pdf)
